Skip to content

Fix copyUIDGID parameter inversion in Docker compat API #27379

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Fix copyUIDGID parameter inversion in Docker compat API #27379

wants to merge 1 commit into from

Conversation

@Honny1
Copy link
Member

@Honny1 Honny1 commented Oct 27, 2025
edited
Loading

Docker API's copyUIDGID=true means "preserve UID/GID from archive" but Podman's internal Chown=true means "chown to container user". This caused Docker SDK clients to have files incorrectly chowned to root:root instead of preserving the archive's UID/GID.

Fixes: #27332
Fixes: https://issues.redhat.com/browse/RUN-3643

Does this PR introduce a user-facing change?

Fixed Docker API compatibility issue where `copyUIDGID=true` parameter was not preserving UID/GID from tar archives when copying files to containers. Files are now correctly preserved with their original ownership instead of being changed to root:root (#27332)

@openshift-ci openshift-ci bot added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. release-note labels Oct 27, 2025
@github-actions github-actions bot added the kind/api-change Change to remote API; merits scrutiny label Oct 27, 2025
@openshift-ci
Copy link
Contributor

openshift-ci bot commented Oct 27, 2025

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: Honny1
Once this PR has been reviewed and has the lgtm label, please assign l0rd for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@packit-as-a-service
Copy link

[NON-BLOCKING] Packit jobs failed. @containers/packit-build please check. Everyone else, feel free to ignore.

@Honny1
Fix copyUIDGID parameter inversion in Docker compat API
2b848cc 
Docker API's copyUIDGID=true means "preserve UID/GID from archive"
but Podman's internal Chown=true means "chown to container user".
This caused Docker SDK clients to have files incorrectly chowned
to root:root instead of preserving the archive's UID/GID.

Fixes: containers#27332
Fixes: https://issues.redhat.com/browse/RUN-3643

Signed-off-by: Jan Rodák <[email protected]>
@Honny1 Honny1 marked this pull request as ready for review October 27, 2025 13:17
@openshift-ci openshift-ci bot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Oct 27, 2025
@baude
Copy link
Member

baude commented Oct 27, 2025

LGTM

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

kind/api-change Change to remote API; merits scrutiny release-note

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Calling CopyToContainer through the podman socket does not preserve UID/GID information

2 participants

@Honny1 @baude